CH920010040US1 


36 


SECURITY MANAGEMENT IN DATA 
PROCESSING NETWORKS 

5 ABSTRACT 

Described is a method, apparatus, and computer program product 
for security management in a node of a data processing network 
comprising a plurality of nodes, wherein each node maintains 
topology data representing the network. The method comprises 
ID evaluating an event received by the node from a neighboring node 
P in the network to determine if the event satisfies a 
HI predetermined security test. If the event fails the security 

test, an entry associated with the neighboring node is modified 
^ in the topology data maintained by the node, and an alarm 

ES notification indicative of the security failure is sent to other 

ill 

j^j nodes of the network. 


